Lucene search
+L

26 matches found

NVD
NVD
added 2025/03/19 7:15 a.m.13 views

CVE-2024-13410

The CozyStay and TinySalt plugins for WordPress are vulnerable to PHP Object Injection in all versions up to, and including, 1.7.0, and in all versions up to, and including 3.9.0, respectively, via deserialization of untrusted input in the 'ajaxhandler' function. This makes it possible for...

9.8CVSS0.00703EPSS
Exploits0References3
CVE
CVE
added 2025/03/19 6:57 a.m.55 views

CVE-2024-13410

CVE-2024-13410 affects CozyStay <= 1.7.0 and TinySalt

9.8CVSS9.7AI score0.00703EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/03/19 6:57 a.m.8 views

CVE-2024-13410 CozyStay <= 1.7.0 and TinySalt <= 3.9.0 - Unauthenticated PHP Object Injection in ajax_handler

The CozyStay and TinySalt plugins for WordPress are vulnerable to PHP Object Injection in all versions up to, and including, 1.7.0, and in all versions up to, and including 3.9.0, respectively, via deserialization of untrusted input in the 'ajaxhandler' function. This makes it possible for...

9.8CVSS7.9AI score0.00703EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/03/19 6:57 a.m.21 views

CVE-2024-13410 CozyStay <= 1.7.0 and TinySalt <= 3.9.0 - Unauthenticated PHP Object Injection in ajax_handler

The CozyStay and TinySalt plugins for WordPress are vulnerable to PHP Object Injection in all versions up to, and including, 1.7.0, and in all versions up to, and including 3.9.0, respectively, via deserialization of untrusted input in the 'ajaxhandler' function. This makes it possible for...

9.8CVSS0.00703EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/19 12:0 a.m.8 views

WordPress plugin CozyStay和WordPress plugin TinySalt 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

9.8CVSS9.1AI score0.00703EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/03/18 9:39 p.m.6 views

WordPress TinySalt theme <= 3.9.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Lucio Sá in WordPress Theme TinySalt versions = 3.9.0...

9.8CVSS9AI score0.00703EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder